דרושים » אבטחת מידע וסייבר » Application Security Director

משרות על המפה
 
בדיקת קורות חיים
VIP
הפוך ללקוח VIP
רגע, משהו חסר!
נשאר לך להשלים רק עוד פרט אחד:
 
שירות זה פתוח ללקוחות VIP בלבד
AllJObs VIP
כל החברות >
סגור
דיווח על תוכן לא הולם או מפלה
מה השם שלך?
תיאור
שליחה
סגור
v נשלח
תודה על שיתוף הפעולה
מודים לך שלקחת חלק בשיפור התוכן שלנו :)
לפני 10 שעות
חברה חסויה
Location: Tel Aviv-Yafo
Job Type: Full Time
we are looking for a Application Security Director.
As the Director of Product Security, you will spearhead our efforts to fortify and enhance the security posture of our products and runtime environments and play a critical leadership role in overseeing the design, implementation, and maintenance of security controls for the organizations complex product applications, platform, development and cloud infrastructure.
You will lead a team of security experts and collaborate closely with engineering, product, and other business units to ensure the security and integrity of our applications, platforms, cloud infrastructure, and code stack against current & evolving threats.
Your leadership will be instrumental in embedding security best practices throughout the development and operations pipeline, ensuring a secure and scalable product environment. You will also drive the strategy, development, and implementation of a comprehensive application security program across our cloud-based applications.
Requirements:
At least 7+ years of experience in security architecture, software development, cloud security, or a related field
At least 5 years in a leadership role.
Engineering background - MUST
Proven leadership skills with a track record of leading high-performing security teams in a fast-paced, technology-driven environment.
Excellent communication and interpersonal skills, with the ability to articulate complex security concepts to technical and non-technical audiences.
Professional security certifications (e.g., CISSP, CISM, CCSP, OSCP) are highly desirable.
Strong technical background in cloud services, DevOps, orchestration tools (e.g., Kubernetes), and cloud-native security tools (CSPM, CWPP).
Excellent communication and stakeholder management skills, with the ability to influence security initiatives across cross-functional teams.
This position is open to all candidates.
 
Hide
הגשת מועמדותהגש מועמדות
עדכון קורות החיים לפני שליחה
עדכון קורות החיים לפני שליחה
8738203
סגור
שירות זה פתוח ללקוחות VIP בלבד
משרות דומות שיכולות לעניין אותך
סגור
דיווח על תוכן לא הולם או מפלה
מה השם שלך?
תיאור
שליחה
סגור
v נשלח
תודה על שיתוף הפעולה
מודים לך שלקחת חלק בשיפור התוכן שלנו :)
01/07/2026
Location: Tel Aviv-Yafo
Job Type: Full Time
We are seeking a highly skilled and experienced Head of Application Security to join our dynamic team. This role is pivotal in driving the security of our software development lifecycle and ensuring the robustness of our applications against potential threats. The ideal candidate will have a strong background in secure software development practices, including SSDLC implementation, and a deep understanding of security risks & tools. This position reports directly to an R&D VP.
Key Responsibilities
Lead the application security team, providing strategic direction and mentorship.
Develop and implement a comprehensive Secure Software Development Lifecycle (SSDLC) framework.
Oversee the integration of security practices into all phases of the software development lifecycle, including CI/CD guardrails.
Conduct risk assessments and threat modeling to identify and mitigate potential security vulnerabilities.
Collaborate with development teams to ensure secure coding practices and adherence to security standards, while maintaining developer productivity.
Implement and manage security automation tools and processes to enhance the efficiency of security operations.
Stay up-to-date on the latest security trends, vulnerabilities, and technologies to continuously improve our security posture.
Provide expert guidance on security architecture and design for new and existing applications.
Lead incident response efforts related to application security breaches and vulnerabilities.
Foster a culture of security awareness and continuous improvement within the organization.
Requirements:
Bachelor's degree in Computer Science, Information Security, or a related field.
Minimum of 7 years of experience in application security, with at least 3 years in a leadership role.
Proven experience in implementing and managing SSDLC frameworks.
In-depth knowledge of security frameworks and methodologies.
Strong understanding of threat modeling methodologies, secure coding practices and common vulnerabilities (e.g., OWASP Top Ten).
Proficiency in programming languages such as Java, Python, C#, or similar.
Experience in implementing security tools and technologies such as ASPM, SAST, DAST in complex and high-scale environment.
Excellent communication and leadership skills, with the ability and passion to drive change across the organization.
Relevant certifications such as CISSP, CISM, or CSSLP are desirable.
Proven experience in a similar role at another leading software development company.
This position is open to all candidates.
 
Show more...
הגשת מועמדותהגש מועמדות
עדכון קורות החיים לפני שליחה
עדכון קורות החיים לפני שליחה
8719435
סגור
שירות זה פתוח ללקוחות VIP בלבד
סגור
דיווח על תוכן לא הולם או מפלה
מה השם שלך?
תיאור
שליחה
סגור
v נשלח
תודה על שיתוף הפעולה
מודים לך שלקחת חלק בשיפור התוכן שלנו :)
02/07/2026
Location: Tel Aviv-Yafo
Job Type: Full Time
our companys Harmony SASE is looking for an Information Security Manager to join its staff.
This is a unique opportunity for you to work in the #1 worldwide Cyber Security Company, gain expertise and experience leading the information security program for the best of SASE (Secure Access Service Edge).
Key Responsibilities
As Information Security Manager you will:
Governance, Risk & Compliance
Lead and manage the Product Security team
Build, operate, and continuously improve the Harmony SASE Information Security Management System (ISMS), aligning policies, standards, and controls with our company and industry best practices.
Own the Harmony SASE compliance roadmap - lead and maintain certifications and attestations including ISO/IEC 27001, SOC 2 Type II, GDPR, IRAP and C5
Lead enterprise risk assessments and the third-party / vendor risk program, ensuring risks are identified, prioritized, and treated.
Coordinate internal and external audits, manage evidence collection, and remediate findings to closure.
Product & Application Security
Develop and implement a comprehensive AI - Secure Software Development Lifecycle (AI S-SDLC) framework, embedding security into every phase of the SDLC and CI/CD pipelines.
Conduct threat modeling and secure architecture reviews for new and existing Harmony SASE features, partnering with R&D to mitigate vulnerabilities by design.
Operate the application security tooling stack - ASPM, SAST, DAST, SCA, AI Security Scanning and secret scanning - at scale, and partner with development teams to drive findings to remediation while maintaining developer productivity.
Champion secure coding practices and OWASP Top 10 awareness across R&D.
Operational Security & Incident Response
Lead security incident response for Harmony SASE - preparedness, detection, containment, eradication, recovery, and lessons-learned - covering both product and information security incidents.
Oversee identity and access governance, ensuring least-privilege, segregation of duties, and access reviews across production and corporate environments.
Design and operate security automation to enhance the efficiency and coverage of security operations.
Security Culture & Enablement
Foster a culture of security awareness and continuous improvement; deliver targeted training for engineers, operations, and broader staff.
Lead responses to customer security questionnaires, RFPs, and due-diligence requests, representing Harmony SASEs security posture to customers and partners.
Stay current on the evolving Threats Landscape, regulations, and technologies, and translate them into pragmatic improvements to the security program.
Youll enjoy:
Interact with executives, managers, engineers across the company
Be the best security expert and knowledgeable you can imagine
Sharing your day with fun, passionate, brilliant people.
דרישות:
We are looking for you:

Bachelors degree in computer science, Information Security, or related field.
Minimum of 5 years of experience in information security or application/product security, with at least 2 year in a leadership role.
Proven experience building or operating an Information Security Management System (ISMS) and leading certifications such as ISO/IEC 27001 and SOC 2.
Working knowledge of GDPR, PCI-DSS, and NIST CSF / 800-53; familiarity with HIPAA, FedRAMP, DORA, Cyber Essentials, C5, IRAP, AI Security Frameworks and the Cloud Controls Matrix (CCM).
Hands-on experience with S-SDLC, threat modeling, and application security tooling such as ASPM, SAST, and DAST in complex, high-scale environments.
Strong understanding of risk management, third-party risk, identity and access governance, and incident response.
Excellent communication and leadership skills, with the ability and passion to drive change across R&D and the broader organization.
Reports to the Harmony SASE Head of Architecture (R&D Director) and partners closely with R&D, DevOps, IT, Legal, and the company Corp המשרה מיועדת לנשים ולגברים כאחד.
 
Show more...
הגשת מועמדותהגש מועמדות
עדכון קורות החיים לפני שליחה
עדכון קורות החיים לפני שליחה
8721123
סגור
שירות זה פתוח ללקוחות VIP בלבד
סגור
דיווח על תוכן לא הולם או מפלה
מה השם שלך?
תיאור
שליחה
סגור
v נשלח
תודה על שיתוף הפעולה
מודים לך שלקחת חלק בשיפור התוכן שלנו :)
לפני 13 שעות
חברה חסויה
Location: Tel Aviv-Yafo
Job Type: Full Time
Our Cyber & Cloud Security Department is seeking a Cloud Security Architect to join us.
This role focuses on leading and advising clients and internal teams on integrating information security into complex technology, cloud, and digital transformation projects.
Responsibilities:
Lead security architecture and cloud security workstreams in complex technology projects, including cloud migrations, modernization programs, and digital transformation initiatives.
Design and define end-to-end security architectures across Azure, AWS, hybrid, and on-premises environments.
Lead cloud security architecture reviews and advise clients on the secure adoption of cloud-native services and security controls.
Provide expert guidance on Security by Design, Privacy by Design, Zero Trust architecture, and emerging domains such as AI Security.
Conduct risk assessments, threat modeling, architecture reviews, and technical security assessments.
Define security requirements and protection strategies for applications, cloud platforms, infrastructure, identities, and data.
Support the implementation of security solutions and oversee security testing and validation activities.
Support RFP processes, vendor evaluations, and technology selection from a security architecture perspective.
Collaborate closely with development, product, infrastructure, cloud, and DevOps teams to embed security throughout the delivery lifecycle.
Requirements:
At least 5 years of experience in Information Security, including security consulting, security architecture, or hands-on implementation roles.
Proven experience designing and securing Azure and/or AWS environments.
Strong understanding of Cloud Security Architecture principles, including IAM, network security, data protection, Zero Trust, and cloud governance.
Experience leading customer-facing engagements, consulting projects, or security architecture initiatives.
Relevant security certifications such as CISSP, CCSP, Microsoft Azure Security Engineer, AWS Security Specialty, or equivalent.
Experience with security frameworks, methodologies, and industry standards (NIST, ISO 27001, CIS Controls, etc.).
Strong understanding of enterprise architecture, modern infrastructure, cloud-native technologies, and software development processes.
Experience reviewing solution designs, architecture documents, and security requirements.
Ability to combine strategic thinking with hands-on technical guidance.
Excellent communication and presentation skills in Hebrew and English.
Strong interpersonal skills and the ability to work effectively with clients and multidisciplinary teams.
This position is open to all candidates.
 
Show more...
הגשת מועמדותהגש מועמדות
עדכון קורות החיים לפני שליחה
עדכון קורות החיים לפני שליחה
8737820
סגור
שירות זה פתוח ללקוחות VIP בלבד
סגור
דיווח על תוכן לא הולם או מפלה
מה השם שלך?
תיאור
שליחה
סגור
v נשלח
תודה על שיתוף הפעולה
מודים לך שלקחת חלק בשיפור התוכן שלנו :)
Location: Tel Aviv-Yafo
Job Type: Full Time
We are looking for a Platform Security Director to lead the engineering of our security infrastructure. Your mission is to build a Security Machine that is as sophisticated as our AI. You will move us beyond traditional "defense" into a "Secure-by-Default" reality, where our multi-cloud infrastructure (AWS and Azure) is hardened, automated, and resilient by design.
Youll Own:
The end-to-end security strategy across Application Security, Cloud (AWS/Azure), and Platform layers, ensuring a Secure-by-Default framework, as measured by deployment coverage, critical vulnerability reduction, and developer adoption metrics.
A unified Security Engineering organization covering AppSec, SecDevOps, and AI Security leadership, collaboration points with adjacent teams (Infrastructure, R&D, Product Engineering), and building and mentoring a high-performing team.
Lead our Platform Security domain - from Layer 7 protections to AWS architecture, security tooling, automated risk scoring, and AI-assisted automation workflows that improve detection and remediation times.
Security controls (WAF, Rate Limiting) embedded into the SDLC and CI/CD pipelines, including mandatory security gates, artifact scanning, and automated deployment checks.
Lead our AI strategy - enabling secure use in our platform products as well as for our internal engineering usage, and scaling AI security governance and controls.
The evolution of scalable infrastructure security, including Kubernetes, containers, IAM, and Zero Trust architectures, strengthening Kubernetes and cloud security posture.
Own and execute the comprehensive Vulnerability Management program, from discovery (SAST/DAST/OSS scanning) through remediation tracking, and manage the external Bug Bounty program, with a focus on improving remediation SLAs and automation coverage.
Mature secure-by-default engineering practices across the SDLC.
Increase developer adoption of automated security tooling.
Youll Solve:
Eliminating manual bottlenecks through code-driven guardrails and frictionless developer experiences.
Securing complex production systems and multi-tenant AI architectures in cloud-native production environments, with a focus on model integrity, training data provenance, data exfiltration prevention, and minimizing unique risks associated with Large Language Models (LLMs), by applying specific AI threat models.
Operationalizing Red/Purple Team exercises, penetration testing, and the Bug Bounty program to ensure a continuous feedback loop that drives proactive risk reduction.
Youll Impact:
Support a culture where security is embedded into the foundation of engineering
Turn security into a strategic product advantage and customer trust differentiator
Improve developer experience by making the secure path the easiest path
Increase engineering velocity while strengthening platform resilience
Shape the future intersection of Security, AI, and Platform Engineering
Create scalable systems, processes, and relationships that grow with the companys innovation pace.
Requirements:
An Experienced Leader: 10+ years in Security/Software Engineering with a track record of scaling departments in high-growth R&D environments.
A Technical Architect: Deep expertise in AWS/Kubernetes and modern platform security practices, Infrastructure-as-Code (Terraform/Crossplane), and secure coding (Java/Python/TypeScript).
A Systems Thinker: You have a proven track of building security machines from the ground up, with a people-first mindset, technology, and process.
Your work ensures that as we define the future of AI-driven revenue, we do so on the most secure and resilient platform in the industry, building customer trust and promoting responsible AI adoption.
This position is open to all candidates.
 
Show more...
הגשת מועמדותהגש מועמדות
עדכון קורות החיים לפני שליחה
עדכון קורות החיים לפני שליחה
8729165
סגור
שירות זה פתוח ללקוחות VIP בלבד
סגור
דיווח על תוכן לא הולם או מפלה
מה השם שלך?
תיאור
שליחה
סגור
v נשלח
תודה על שיתוף הפעולה
מודים לך שלקחת חלק בשיפור התוכן שלנו :)
Location: Tel Aviv-Yafo
Job Type: Full Time
As a Senior Product Security Architect, you will join a highly technical, fast-moving Product Security team to advance and secure platform and its modern AI-driven capabilities. Operating in an environment with deep R&D collaboration and a hybrid schedule, you will own the development lifecycle's security strategy, ensuring modern cloud and distributed systems are engineered safely by design. This role directly supports core development teams across Israel and Portugal, ensuring robust posture alignment from initial planning through deployment.

Responsibilities
Collaborate with R&D teams to identify, prioritize, and drive security requirements and mitigation strategies throughout the development lifecycle.
Conduct architecture, design, and threat modeling security reviews for web, cloud (AWS), and distributed systems.
Produce explicit, actionable security architecture documents, design specifications, and technical guidelines for engineering.
Lead incident response efforts during active product cyber security events, driving cross-functional remediation across engineering teams.
Requirements:
5+ years of hands-on software development experience with at least 3 years dedicated to application security or product security roles.
Professional experience analyzing, reading, and evaluating codebase architecture within a product-centric tech stack.
Hands-on experience working directly in AWS cloud environments and building application threat models.
Active experience utilizing AI/LLM-based tools (e.g., Claude, Augment) to optimize development workflows, research, or productivity.
Professional fluency in both written and verbal communication in English.
This position is open to all candidates.
 
Show more...
הגשת מועמדותהגש מועמדות
עדכון קורות החיים לפני שליחה
עדכון קורות החיים לפני שליחה
8721498
סגור
שירות זה פתוח ללקוחות VIP בלבד
סגור
דיווח על תוכן לא הולם או מפלה
מה השם שלך?
תיאור
שליחה
סגור
v נשלח
תודה על שיתוף הפעולה
מודים לך שלקחת חלק בשיפור התוכן שלנו :)
28/06/2026
Location: Tel Aviv-Yafo
Job Type: Full Time
We're looking for a Principal Cloud Security Researcher to serve as a senior technical leader within our Research team. This is a high-impact individual contributor role -- you won't manage people, but you'll shape the direction of our entire research function, mentor researchers, and act as a force multiplier across the organization.
You'll be the person who takes a vague threat signal and turns it into a detection strategy, a published finding, or a product capability. You'll operate as a trusted deputy to the research team lead, owning the most complex and ambiguous research challenges while raising the technical bar for the team.
What You'll Do
Drive Groundbreaking Research
Own and drive our most critical research initiatives end-to-end - from initial threat hypothesis through detection logic, product integration, and external publication.
Set the technical direction for cloud threat research across AWS, Azure, and GCP, identifying emerging attack surfaces and novel techniques before they become mainstream threats.
Investigate real-world cloud and SaaS security incidents, dissecting attacker tradecraft and extracting insights that evolve our detection capabilities.
Pioneer new forensic investigation techniques and detection methodologies for cloud-native and SaaS environments - pushing the state of the art, not just following it.
Be a Voice in the Community

Represent our company as a thought leader through high-quality research publications, conference presentations (BlackHat, DEF CON, RSA, fwd:cloudsec, and similar venues), and open-source contributions.
Build and maintain our reputation as a research-driven company that advances the field - not just a vendor with a blog.
Engage with the broader security research community, fostering relationships and collaborative knowledge-sharing.
Shape the Product

Bridge research and product - translate threat findings into actionable product requirements, working closely with engineering and product teams to ensure our CDR platform stays ahead of evolving threats.
Design and develop advanced detection algorithms that directly feed into our platform, closing the gap between research insight and customer protection.
Elevate the Team
Act as the team's go-to technical authority. When researchers hit a wall on complex cloud attack chains, IAM edge cases, or detection gaps - you're who they turn to.
Mentor and grow other researchers through research reviews, pair investigations, code reviews, and by setting quality standards and methodology best practices.
Influence technical decisions org-wide - contributing to architecture, tooling, and strategic research priorities.
Step in as the research team lead's deputy when needed - driving prioritization, representing research cross-functionally, and ensuring continuity.
Requirements:
8+ years in security research, threat research, or closely related fields (offensive security, detection engineering, incident response, cloud security engineering). Fewer years are fine if your depth and track record are exceptional.
Deep multi-cloud expertise - strong hands-on experience across at least two of the major cloud providers (AWS, Azure, GCP), with working knowledge of the third. You understand the IAM models, logging pipelines, APIs, and attack surfaces that matter in each.
A track record of original research - you've published meaningful technical findings through blog posts, conference talks, open-source tools, or vulnerability discoveries that moved the needle. We want someone who doesn't just consume research - you produce it.
Strong adversarial mindset and critical thinking - you think like an attacker targeting cloud infrastructure, SaaS platforms, identity systems, and Kubernetes. You can model threat scenarios, map out attack paths, and poke holes in defenses.
This position is open to all candidates.
 
Show more...
הגשת מועמדותהגש מועמדות
עדכון קורות החיים לפני שליחה
עדכון קורות החיים לפני שליחה
8712545
סגור
שירות זה פתוח ללקוחות VIP בלבד
סגור
דיווח על תוכן לא הולם או מפלה
מה השם שלך?
תיאור
שליחה
סגור
v נשלח
תודה על שיתוף הפעולה
מודים לך שלקחת חלק בשיפור התוכן שלנו :)
21/06/2026
Location: Tel Aviv-Yafo
Job Type: Full Time
We are seeking a seasoned security leader to manage a high-caliber research team focused on the security of Identity, SaaS, and Cloud ecosystems. In this role, you will provide technical mentorship and strategic vision, guiding research into service risk profiling and adversarial TTPs analysis. You will be the bridge between cutting-edge research and product innovation, ensuring our findings translate into high-impact security outcomes to stay ahead of modern adversaries.
Key Responsibilities
Define the research roadmap for Identity, SaaS, and Cloud risks, ensuring the team's outputs align with the evolving threat landscape and company goals.
Lead and grow a diverse team of security researchers, providing the technical guidance and career development necessary to maintain a world-class research organization.
Leverage your experience in a product-focused environment to ensure research outcomes directly influence service security strategies and customer-facing solutions.
Oversee the execution of high-fidelity attack simulations and TTP deconstruction, ensuring the 'how-to' of secure service usage is clearly defined and actionable.
Partner with Engineering, Product Management, and Threat Intel teams to transform raw research into robust mitigation strategies and resilient service blueprints.
Represent the team's research internally and externally, positioning the organization as a premier authority on Identity-centric and Cloud security.
Requirements:
2+ years of experience in technical leadership or people management, with a proven track record of directing high-impact security research projects.
Proven experience leading, mentoring, or managing a team of technical security researchers.
Deep technical expertise in security research related to Identity platforms (e.g., Azure AD, Okta), SaaS applications, and major cloud environments (AWS, Azure, GCP).
Demonstrated ability to define and execute a strategic research agenda.
Preferred Qualifications
Experience working in a product-driven cybersecurity company, translating research into product features or security solutions.
A track record of public speaking at security conferences or publishing research papers.
Experience with adversarial tactics, techniques, and procedures (TTP) analysis and simulation.
This position is open to all candidates.
 
Show more...
הגשת מועמדותהגש מועמדות
עדכון קורות החיים לפני שליחה
עדכון קורות החיים לפני שליחה
8703202
סגור
שירות זה פתוח ללקוחות VIP בלבד
סגור
דיווח על תוכן לא הולם או מפלה
מה השם שלך?
תיאור
שליחה
סגור
v נשלח
תודה על שיתוף הפעולה
מודים לך שלקחת חלק בשיפור התוכן שלנו :)
14/06/2026
חברה חסויה
Location: Tel Aviv-Yafo
Job Type: Full Time
Were looking for a driven, motivated, and ambitious GRC Specialist to join our growing Security team . Here, were redefining how security teams operate - not by buying more tools, but by building smarter, AI-driven programs from the ground up. As our GRC Specialist, you'll own the compliance programs that underpin trust with our customers and partners, while actively shaping how we use AI and automation to make compliance faster, more rigorous, and less manual. This isn't a checkbox role. It's a builder role for someone who sees compliance as a competitive advantage and AI as the engine to get there.
Responsibilities:
Compliance Program Ownership
Own and lead security compliance programs across SOC 2, ISO 27001, C5 BSI, and ISO 42001, ensuring continuous readiness and alignment with evolving requirements.
Lead the scoping, planning, and implementation of new compliance frameworks as the business scales into new markets and regulatory environments.
Act as the primary point of contact for audits - managing evidence collection, auditor relationships, and remediation tracking end-to-end.
AI-Driven Compliance Operations
Design and operate continuous compliance monitoring programs leveraging AI and automation - replacing point-in-time snapshots with real-time assurance.
Build internal AI-powered tooling and workflows (in partnership with the AI Transformation Lead) to automate evidence gathering, control validation, and risk signal aggregation.
Evaluate and adopt emerging AI compliance methodologies, including AI-specific frameworks like ISO 42001, and translate them into actionable internal programs.
Risk & Vendor Management
Manage the third-party risk program (TPRM), including vendor assessments, security questionnaires, and ongoing monitoring of the vendor landscape.
Maintain and actively drive the risk register in close collaboration with the CISO, ensuring risks are tracked, owned, and remediated on time.
Policy & Culture
Develop and maintain security policies, standards, and procedures that are practical, current, and aligned with both compliance requirements and business objectives.
Drive security awareness training across the organization and champion secure development practices in collaboration with engineering and product teams.
Cross-functional Collaboration
Serve as a trusted partner to the CISO, Information Security Manager, HR, Legal, and AI Transformation Lead on matters of risk, compliance, and security governance.
דרישות:
A self-starter mindset: comfortable with ambiguity, able to set priorities without heavy direction, and capable of building structure where none exists.
Demonstrated ability to build compliance and security programs from scratch, not just maintain inherited ones.
2+ years of hands-on experience in information security and GRC, ideally in a fast-moving SaaS or tech environment.
Deep familiarity with major frameworks and regulations - SOC 2, ISO 27001, NIST, CIS, DORA, GDPR, and related standards.
Practical experience with security and IT tooling across cloud environments (AWS, Azure, or GCP), application security, and infrastructure security.
Exposure to SOC (cybersecurity operations center) environments and cybersecurity incident response.
Strong written and verbal communication skills - able to translate technical risk into clear language for executives, auditors, and non-technical stakeholders.
Hands-on experience with IT and Security tools
AI Orientation (Non-Negotiable)-
Genuine curiosity and working knowledge of AI tools, LLMs, and automation - you've used them, not just read about them.
Experience building or operating AI-assisted workflows for compliance, risk, or security operations is a strong plus.
Ability to think critically about AI risk, including how to govern and assess AI systems under frameworks like ISO 42001.
Visionary outlook: you see the 2-year horizon where AI has transformed how GRC functions and you want to be the person who builds that future המשרה מיועדת לנשים ולגברים כאחד.
 
Show more...
הגשת מועמדותהגש מועמדות
עדכון קורות החיים לפני שליחה
עדכון קורות החיים לפני שליחה
8692757
סגור
שירות זה פתוח ללקוחות VIP בלבד
סגור
דיווח על תוכן לא הולם או מפלה
מה השם שלך?
תיאור
שליחה
סגור
v נשלח
תודה על שיתוף הפעולה
מודים לך שלקחת חלק בשיפור התוכן שלנו :)
02/07/2026
חברה חסויה
Location: Tel Aviv-Yafo
Job Type: Full Time
We are looking for a Security Lead to join our companys R&D organization, taking a central, cross-functional role in shaping the security posture of our products. This role combines deep hands-on expertise with cross-organizational leadership, working closely with senior leaders to shape and implement security strategy across all product lines. You will lead end-to-end security initiatives, influence engineering practices at scale, and play a critical role in ensuring our products meet the highest security standards.
Key Responsibilities
Lead security in the R&D organization by professionalism and cooperation across our company
Maintain and develop the Secure Development Life Cycle of all our companys Products Organization, work with R&D, QA, Sales, Support, external researchers, and customers to make the cyber landscape a safer place.
Conduct architectural security reviews and threat modeling for R&D
Full triage for our company's VDP and BBP reports, including analyzing reports, calculating severities and communications with reporters.
Define and develop security training to implement cross organization
Be a first responder in security incidents, including leading and defining actions to resolution
Manage and monitor our company's SCA, SAST, DAST tools.
Requirements:
Proven ability to lead and influence leaders across the organization.
In-depth knowledge of Secure Development Life Cycle (SDLC) processes, secure architecture, third-party tools, and security policies.
Threat modeling & secure design - Ability to review architectures, identify abuse cases, and guide developers on secure design decisions early in the lifecycle.
Expertise in identifying, analyzing, and mitigating security vulnerabilities, including familiarity with Common Vulnerabilities and Exposures (CVE) and the Common Vulnerability Scoring System (CVSS).
Hands-on experience with AppSec tooling - SAST, DAST, SCA (e.g., SonarQube, Snyk, JFrog Xray), including tuning, triaging results, and integrating into CI/CD pipelines.
Experience with vulnerability management and the ability to interpret and apply security standards, guidelines, and regulations.
Proficiency in secure coding practices and the ability to conduct code reviews for security vulnerabilities.
Familiarity with incident response processes, security monitoring, and threat intelligence.
Offensive mindset - Ability to think like an attacker (manual testing, basic exploitation techniques) to validate real impact and reduce false positives.
Advantage:
Prior experience in software development.
This position is open to all candidates.
 
Show more...
הגשת מועמדותהגש מועמדות
עדכון קורות החיים לפני שליחה
עדכון קורות החיים לפני שליחה
8721058
סגור
שירות זה פתוח ללקוחות VIP בלבד
סגור
דיווח על תוכן לא הולם או מפלה
מה השם שלך?
תיאור
שליחה
סגור
v נשלח
תודה על שיתוף הפעולה
מודים לך שלקחת חלק בשיפור התוכן שלנו :)
10/06/2026
חברה חסויה
Location: Tel Aviv-Yafo
Job Type: Full Time
Are you ready to evolve from a GRC Specialist into a strategic leader? We are looking for a high-potential GRC Specialist to join our company.
As a GRC at our company you will be responsible for aligning our companys security compliance and regulatory requirements. You will be responsible for preparing the business for certifications and regulations. You will verify that existing controls are adequate and define and oversee the implementation of new security controls. In addition, you will be responsible for) Risk management, employee awareness and Vendor Security assessment. You will devise new policies and update existing ones while aligning with business processes.
What am I going to do?
Oversee the company's security GRC program.
Lead annual certifications (ISO 27001, SOX-ITGC) and prepare for security audits (e.g., PCI DSS).
Third-party risk management.
Develop policies and guidelines aligned with security best practices for complex environments.
Conduct risk management and build plans to mitigate risks while engaging stakeholders.
Collaborate with IT, Legal, HR, Finance, and security teams to address gaps versus best practices.
Drive the security awareness program and explore strategies to enhance the security posture.
Requirements:
1+ years in security & GRC.
Proven experience in leading security compliance efforts, including certifications such as SOX, PCI DSS, and ISO 27001.
Strong project management and familiarity with cloud and SaaS technologies.
Basic working knowledge of AI tools and the ability to apply them in daily work to improve efficiency, drive innovation, and strengthen GRC activities.
Experience in vendor management, including handling security agreements and security questionnaires (advantage).
Technical mindset with experience in security tools (advantage).
Curiosity, eagerness to learn, and a proactive attitude.
Strong interpersonal skills and ability to work effectively with people.
This position is open to all candidates.
 
Show more...
הגשת מועמדותהגש מועמדות
עדכון קורות החיים לפני שליחה
עדכון קורות החיים לפני שליחה
8688289
סגור
שירות זה פתוח ללקוחות VIP בלבד